CVE-2008-3959 Information

Description

IBM DB2 UDB 8.1 before FixPak 16 8.2 before FixPak 9 and 9.1 before FixPak 4a allows remote attackers to cause a denial of service (instance crash) via a crafted SQLJRA packet within a CONNECT/ATTACH data stream that simulates a V7 client connect/attach request.

Reference

http://secunia.com/advisories/29022 http://www.appsecinc.com/resources/alerts/db2/2008-01.shtml http://www-1.ibm.com/support/docview.wss?uid=swg1IZ05043 https://exchange.xforce.ibmcloud.com/vulnerabilities/45134